First published: Wed Feb 23 2022(Updated: )
Dell BSAFE SSL-J contains remediation for a covert timing channel vulnerability that may be exploited by malicious users to compromise the affected system. Only customers with active BSAFE maintenance contracts can receive details about this vulnerability. Public disclosure of the vulnerability details will be shared at a later date.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell BSAFE SSL-J | >=6.1.0<6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-24409 is a vulnerability in Dell BSAFE SSL-J that allows malicious users to exploit a covert timing channel and compromise the affected system.
The severity of CVE-2022-24409 is high with a CVSS score of 7.5.
To fix CVE-2022-24409, customers with active BSAFE maintenance contracts should refer to the Dell support website for the security update.
Only customers with active BSAFE maintenance contracts can receive details about CVE-2022-24409.
The Common Weakness Enumeration (CWE) ID for CVE-2022-24409 is 385.